D STATES PATENT AND TRADEMARK OFFICE 



In re application of: Chang et al. 
Serial No.: 09/737,430 
Filing Date: 12/15/2000 



For: Method and system for 
unambiguous addressability in a 
distributed application framework in 
which duplicate network addresses 
exist across multiple customer 
networks 



LETTER TO OFFICIAL DRAFTSPERSON 



Assistant Commissioner for Patents 
Washington, DC 20231 



Sir: 

Submitted herewith are formal drawings (12 sheets) for the above-identified application. 



DATE: May 30. 2001 Respectfully submitted. 



Joseph 
Reg. No. 44,468 

ATTORNEY FOR APPLICANT 

Law Office of Joseph R. Burwell 
P.O. Box 28022 
Austin, Texas 78755 
(512)502-9448 (voice) 
(512) 597-1218 (fax) 



§ Group Art Unit: 2153 
§ 

§ Examiner: Unknown 
§ 

§ Attomey Docket No.: AUS9-2000-0698-US1 
I 



Certificate of Mailing 
Under 37 C.F.R. § 1.8(a) 

I hereby certify that this correspondence is being 
deposited with the United States Postal Service as 
First Class mail in an envelope addressed to: 
Assistant Commissioner of Patents, 
Washington, D.C. 20231 
on May 30. 2001 . 



By: 




No 44,468 




U.S. serial Number 09/737,430 Atty. Docket # AyS9-2000-0698-US1 
,^B^ v Chang et al. 

Method and syste^Bir unambiguous addressability in a dis^|Rited appHcatipn framework 
in which dupiTicate network addresses exist across muVi^'/ie customer networks 



1/12 



/application 

( OBJECT 
V 102 



FIG. lA 

(PRIOR ART) 



TARGET 
HARDWARE 
RESOURCE A 
110 





targetX 
hardware \ 
resources ) 

112 y 




FIG. 2A 



U.S. Serial Number 09/737,430 Atty. Docket # AUS9-2000-0698-US1 

Chang et 

Method and systJSIr unambiguous addressability in a di^PRjted application framework 
In which duplicate network addresses exist across multiple customer networks 



2/12 




EXTERNAL 
NETWORK 
122 



SYSTEM A 
130 



(10.0.0.1) 





OUTER 
NIC 
126 




FIREWALUNETWORK ADDRESS 
TRANSLATOR (NAT) 
120 




INNER 
NIC 
128 





NIC 
132 



INTERNAL PROTECTED 
NETWORK 
124 





NIC 
136 




SYSTEM B 




134 




(10.0.0.2) 



NIC 
140 



SYSTEM C 
138 

(10.0.0,3) 



FIG, IB 

(PRIOR ART) 



MULTICUSTOMER DATABASE 
152 



SERVICE 
PROVIDER 
150 



CUSTOMER A 
154 




CUSTOMER B 
164 



NAT 
168 




FIG. IC 



U.S. Serial Number 09/737.430 Atty. Docket # AUS9-2000-0698-US1 

Chang et 

Method and syst JBir unambiguous addressability in a di^BRited application framework 
in which duplicate network addresses exist across multiple customer networks 



3/72 



GATEWAY 
216 



SERVER 
222 



ORB 
221 



IPC 
219 



AUTHORIZER 
223 



LOCATOR 
225 



OBJECT LIBRARY 
229 



THREADS 
217 



OS 
215 



BOA 
227 



l ! 



ENDPOINT 
218 



CLIENT FRAMEWORK 
224 



ENDPOINT 
218 



CLIENT FRAMEWORK 
224 



FIG. 2B 



CLIENT FRAMEWORK 
224 




DAEMON 
226 




RUNTIME 
LIBRARY 
228 











FIG. 2C 



U.S. Serial Number 09/737.430 - Atty. Docket # AUS9-2000-0698-US1 

Chang et 

Method and syst JBor unambiguous addressability in a di^BRited application framework 
in which duplicate network addresses exist across multiple customer networks 



4/12 




ENDPOINT A 
230 



APPLICATION ACTION OBJECT 
232 



OPERATING 
SYSTEM 
OBJECT 
236 



DEVICE 
DRIVER 
OBJECT 
234 



ENDPOINT B 
231 



APPLICATION OBJECT 
233 



OPERATING 
SYSTEM " 
OBJECT 
237 



DEVICE 
DRIVER 
OBJECT 
235 



FIG. 2D 



ENDPOINT A 
252 



APPLICATION STACK 
254 



DISTRIBUTED KERNEL 
SERVICES/JVM 
255 



OPERATING SYSTEM 
RESOURCES 
256 



NETWORK 
DEVICE DRIVERS 
257 



NIC 

258 



FIG. 2E 



ENDPOINT B 
253 



APPLICATION STACK 
254 



DISTRIBUTED KERNEL 
SERVICES/JVM 
255 



OPERATING SYSTEM 
RESOURCES 
256 



NETWORK 
DEVICE DRIVERS 
257 



NIC 
258 



NETWORK 
250 



DISTRIBUTED KERNEL SERVICES (DKS) GATEWAY 

251 




U.S. Serial Number 09/737,430 Atty. Docket # AUS9-2000-0698-US1 

A Chang et al. 
r unambiguous addressability in a di^lRjted application framework' 
in which duplicate network addresses exist across multiple customer networks 



5/12 




NIC 
264 



GATEWAY 
260 



DKS ORB 
(GATEWAY) 
266 



DKS-ENABLED 
APPLICATION A 
268 



DKS-ENABLED 
APPLICATION B 
269 



-FIG.-2F 




NIC 
274 



GATEWAY 
270 



DKS ORB 
(GATEWAY) 
276 



NIC 
278 



NIC 
282 



GATEWAY 
280 



DKS ORB 
(GATEWAY) 
284 



NIC 
286 



NIC 

296 



ENDPOINT 
294 



FIG. 2G 



NIC 
292 



ENDPOINT 
290 



DKS ORB 
(ENDPOINT) 
298 



U.S. Serial Number 09/737,430 Atty. Docket # AUS9-2000-0698-US1 

Chang etal. 

Method and syst^Bor unambiguous addressability in a di^lKited application framework 
in which duplicate network addresses exist across multiple customer networks 

6/12 \ 



ENDPOINT A 
301 



DKS ORB (ENDPOINT A) 
320 



DKS APPLICATION 
(RESOURCE 
REQUESTER) 
324 



DKS SERVICES-- 
ENDPOINT 
330 



GATEWAY 
300 



ORB 


(DKS SERVICES) 


304 




NETWORK 






ENDPOINT 






LOCATION 






(NELS) 






SERVICE 






306 








IP OBJECT 






PERSISTENCE 






(IPOP) 






SERVICE 






308 








GATEWAY 






SERVICES 






310 







ENDPOINT B 
302 



DKS ORB (ENDPOINT B) 
322 



TARGET RESOURCE 

(RESOURCE 
PROVIDER, OBJECT. 
OR APP) 
326 



DKS SERVICES- 
"ENDPOINT 
334 



FIG. 3 



IP OBJECT 
PERSISTENCE 
(IPOP) 
SERVICE 
DATABASE 
402 



ENDPOINT 
DB TABLE 
404 



TOPO OBJECT 



TOPO OBJECT 



SYSTEM 
DB TABLE 
406 



TOPO OBJECT 



TOPO OBJECT 



NETWORK 
DB TABLE 
408 



TOPO OBJECT 



TOPO OBJECT 



FIG. 4 



U.S. Serial Number 09/737,430 Atty. Docket # AIJS9-2000-0698-US1 



Chang et al. 



Method and systl^P6r unambiguous addressability in a didlMlited application framework 
in which duplicate network addresses exist across multiple customer networks 



7/72 



500 



PHYSICAL IP NETWORKS 
514 



CONFIGURATION 
SERVICE 
528 



APPLICATION/ 
USERS 
524 



IP DRIVER 
502 



MONITOR 
CONTROLLER 
516 



DISCOVERY 
CONTROLLER 
506 



IP DRIVER 
CONTROLLER 
530 



IP DRIVER 
INTERFACE 
526 



IP DATA 
CACHE 
520 



IP MAPPER 
508 



IP 

DATASTORE 
518 



NETWORK 

EVENT 
MANAGER 
APPLICATION 
522 



TOPOLOGY 
SERVICE 
504 



IP OBJECT PERSISTENCE 
(IPOP) 
SERVICE 
510 



IPOP DATABASE 
512 



FIG. 5 A 



DRIVER 1 SCOPE (D1) 



DRIVER 2 SCOPE (D2) 
<^.2.12.0 



U.S. Serial Number 09/737.430 Atty. Docket # AUS9-2000-0698-US1 

A Chang et al. 
r unambiguous addressability in a di^lRited application framework 
in which duplicate network addresses exist across multiple customer networks 

8/12 



DKS CUSTOMER ADDRESS MANAGER SERVICE 

616 



CUSTOMER LOGICAL NETWORK CREATOR 
618 



VPN CREATOR 
620 



ANCHORNAME 
CREATOR 
622 



CUSTOMER AND VPN ID CREATOR 
624 



DKS ORB/CORE 
SERVICES 
614 



IPOP 
612 



IP DRIVER 
608 



FIG. 6A 



GATEWAY/NEL 
610 



850 



Network Management Application 



NETWORKS REQUIRING VPN CREATION-DUPLICATE ADDRESSES EXIST 
PHYSICAL NETWORK ADDRESS: 10.7.205.103 852 
CUSTOMER ANCHORNAME: AUSTIN\BLDG1 856 
VPN ID: 



870 



PHYSICAL NETWORK ADDRESS: 10.7.205.103 
CUSTOMER ANCHORNAME: AUSTIN\BLDG2 
VPN ID: 



854 
858 



872 



878 "-^JXl CHANGE VPN ID 

FOR ENTIRE SCOPE 



( SET 874 876 ^-JC 



CLEAR 



FIG. 8 



U.S. Serial Number 09/737,430 Atty. Docket # AUS9-2000-0698-US1 

Chang et 

Method and systeHror unambiguous addressability in a diSSmited application framework' 
in which duplicate network addresses exist across multiple customer networks 

9/12 

Public Class IPActionObject { 

Endpoint sourceEP; 
Endpoint targetEP; 

// CONSTRUCTOR 

IPActionObject( Endpoint targetEP, Endpoint sourceEP ) { 



} 

VOID performAction( ) // EXECUTES ACTION METHOD 



^ FIG. 6B 

Public Class Endpoint { 
// public variables 

long EPObjectID; // ID to object (both private and public network addresses) 
InetAddress EPIPAddress; // physical network address (private or public) 
long EPVPN; // virtual private network ID 

//get/set of variables 
public long getObjectlD( ){...} 

public InetAddress getPAddress( ){...} 
public long getVPN( ){...} 

} 

FIG. 6C 



Public Class EndpointCustonner extends Endpoint { 

public getVPNGW( ) { 

//gets the only gateway which has access to a particular private network 



} 

//private variables only set/accessed by EP creator I POP 

long customerHashNumber; 

String customerName; 

String customerAnchorPath; 

Long objectloFPrivateGatewayRoute 

FIG. 6D 

I 



U.S. Serial Number 09/737.430 Atty. Docket # AyS9-2000-0698-US1 

A Chang et al. 
r unambiguous addressability in a diSRited application framework 
in which duplicate network addresses exist across multiple customer networks 

10/12 



Q BEGIN^) 



MULTI-CUSTOMER ADMINISTRATOR 
CREATES DKS VPN IDs 
702 



MULTI-CUSTOMER ADMINISTRATOR 
CREATES NETWORK SCOPE FOR ALL 
CUSTOMERS 
704 





r 


ADMINISTRATOR RESOLVES 
ADDRESSABILITY PROBLEMS 
706 


1 


r 



STORE MAPPING OF CUSTOMERS. 
VPNs, CUSTOMER ANCHORNAMES, 
AND CUSTOMER NETWORKS IN IPOP 
DB 
708 



FIG. 7 A 



^ BEGIN^^ 



ORB STARTS 
CUSTOMER ADDRESS MANAGER 
712 



FIND IDENTITY OF ADMINISTRATOR 
714 



RETRIEVE ALL DISCOVERED 
NETWORKS FOR 
ADMINISTRATOR'S CUSTOMER OR 
CUSTOMERS 
716 





f 


ASSIGN VPN IDs TO ALL 
NETWORKS NEEDING VPN 
718 




f 


UPDATE NETWORK OBJECTS IN 
IPOP WITH ASSIGNED VPN IDs 
720 




f 


UPDATE SCOPE 
WITH ASSIG 

7: 


CONFIGURATION 
MED VPN IDs 

10 



3; 

^ END 

FIG. 7B 



* 



U.S. Serial Number 09/737,430 Atty. Docket # AUS9-2000-0698-US1 ^ . 

A Chang et al. ^ 
r unambiguous addressability In a dl^lRited application framework ^ 
in which duplicate network addresses exist across multiple customer networks 



11/12 



BEGIN J) 



DISPLAY NETAA/ORKS THAT NEED A 
VPN ID TO THE ADMINISTRATOR 
732 



DISPLAY POSSIBLE VPN IDs FROM 
WHICH ADMINISTRATOR MAY CHOOSE 
734 



LET ADMINISTRATOR DEFINE VPN IDs IF 
NOT ALREADY DEFINED 
736 



NO 




YES 



ASSIGN VPN ID TO NETWORKS OF 
ADMINISTRATOR'S CUSTOMER 
740 



GET CUSTOMER FROM 
ADMINISTRATOR 
742 



ASSIGN VPN ID TO THE NETWORKS 
OF THE SPECIFIED CUSTOMER OF 
THE ADMINISTRATOR 
744 





^ END ^ 



FIG. 7C 



U.S. Serial Number 09/737,430. Atty. Docket # AUS9-2000-0698-US1 . 
Mt^ Chang et 

Method and syst^Bor unambiguous addressability in a di^HRited application framework 
In which duplicate network addresses exist across multiple customer networks 



BEGIN ^ 



12/12 



ORB STARTS PRIVATE NETWORK MULTI- 
CUSTOMER MANAGER (PNMCM) 
902 



ADMINISTRATOR LAUNCHES APPLICATION/GUI 
THAT USES PNMCM 
904 



ADMINISTRATOR CHOOSES AN ENDPOINT AND 
REQUESTS TO PEFORM AN IP PING ACTION 
906 



PNMCM ATTEMPTS TO FETCH REQUESTED 
ENDPOINT FROM IPOP USING SPECIFIED IP 
ADDRESS ONLY 
908 



^ BEGIN ^ 



APPLICATION REQUESTS 
APPLICATION ACTION OBJECT 
OF TYPE "IP" (AAOIP) FOR 
TARGET ENDPOINT FROM 
GATEWAY 
922 





r 


GATEWAY ASKS NEL SERVICE 
TO DECODE TARGET ENDPOINT 
924 




r 


NEL SERVIC 
TO DECODE TAF 

9: 


E ASKS IPOP 
^GET ENDPOINT 



DOES IPOP RETURN 
DUPLICATE ENDPOINTS? 
910 



NO 



YES 



DISPLAY DUPLICATE ENDPOINTS AND 
ASSOCIATED VPN ID'S 
912 



REQUEST ADMINISTRATOR TO CHOOSE ONLY 
ONE OF THE DUPLICATE ENDPOINTS 
914 



ADMINISTRATOR REQUESTS IP PING ACTION ON 
SELECTED ENDPOINT 
916 



IPOP DECODES ENDPOINT 
ADDRESS AND RETURNS 
GENERATED AAOIP INCLUDING 
VPN ID TO NEL 
928 





r 


NEL SERVICE RETURNS AAOIP 
TO GATEWAY 
930 






GATEWAY RETURNS AAOIP 
TO APPLICATION 
932 




r 



PNMCM DISPLAYS RESULTS OF PING ACTION TO 
ADMINISTRATOR 
918 



APPLICATION PERFORMS 
DESIRED ACTION ("PING") ON 
TARGET ENDPOINT 
934 



I 

( ) 
FIG. 9A 



END 

FIG. 9B 



